So the good news is Vinyl Collective was not affected by Heartbleed. Your information wasn’t compromised, so there is no need to change your passwords. That said, if any of you are still uneasy, you can always edit your information from the control panel.
What is Heartbleed? It’s an exploit found in OpenSSL - a method of cryptography for web-based databases. As a result, its possible that your sensitive information was exposed for those in-the-know to see. Google was affected, as was Facebook, Yahoo, Tumblr, and others. About two-thirds of the internet uses OpenSSL, so you can imagine why this is a big deal.
All of the sites I mentioned above have already patched the issue and are requested password changes from users as a precaution. Likewise, there have been no reports of compromised information falling into the wrong hands. For a complete list of affected sites and their current status, see this list from Mashable: http://mashable.com/2014/04/09/heartbleed-bug-websites-affected/
Back to VC, we never used OpenSSL for our security. As such, your information was never in danger. Regardless, we’ve gone over our security again just in case. Also, as noted yesterday, we migrated VC to new servers this morning. You should notice the site running faster than ever.
If you’d like to know more about Heartblood, read this article: http://techcrunch.com/2014/04/07/massive-security-bug-in-openssl-could-effect-a-huge-chunk-of-the-internet/